Skip to content

v109.0.3

Pre-release
Pre-release

Choose a tag to compare

View all tags
@github-actions github-actions released this 27 Jun 22:31
· 2 commits to develop since this release
v109.0.3
e787b81
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

109.0.3 (2026-06-27)

Bug Fixes

  • ci: resolve @electron/node-gyp to the npm package (fixes Docker/MCP image builds) (7baf9b4), closes electron/node-gyp#06b29aafb7708acef8b3669835c8a7857ebc92d2
  • security: address bot review on GitHub install nonce (887e2f8)
  • security: harden GitHub state nonce per adversarial review (47de6a7)
  • security: inject JWT_VERIFICATION_TOKEN_SECRET in all prod/stage deploys (GHSA-chm8-2ggf-pgjq) (ee7a840), closes #9752
  • security: keep JWT_VERIFICATION_TOKEN_SECRET out of demo deploys (review feedback) (4ce4d7f)
  • security: require a server-minted state nonce for GitHub App installs (GHSA-4rwq-65wh-45h4) (e1ecc1a), closes #9754 #9754

What's Changed

  • fix(ci): resolve @electron/node-gyp to npm package (fixes Docker/MCP image builds) by @evereq in #9761

Full Changelog: v108.0.1...v109.0.3

Contributors

evereq
Assets 2
Loading